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Listing of Claims : 

1 . (Currently Amended) A method of improving security processing in a computing 
network, comprising: 

providing security processing in an operating system kernel; 

providing an -first and second application program programs which makes -make use of 
the operating system kernel during execution; 

providing security policy information that is usable for more than one executing 
application program; 

executing the first application program; and 

selectably encrypting at least one remote communication of the executing first 
application program using the provided security processing in the operating system kernel, under 
conditions specified by the security policy information; 

executing the second application program: and 

selectably encrypting at least one remote communication of the executing second 
application program using the provided security processing in the operating system kernel under 
conditions specified by the security policy information . 

2. (Original) The method according to claim 1 , wherein the security policy information 
is stored in a security repository. 

3. (Cancelled) 

4. (Previously Amended) The method according to claim 1, wherein the conditions, 
comprise network addresses. 

5. (Previously Amended) The method according to claim 4, wherein the network 
addresses specify at least one of server addresses and destination addresses. 
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6. (Previously Amended) The method according to claim 4, wherein the network 
addresses comprise at least one of ranges of source addresses and ranges of destination 
addresses. 

7. (Previously Amended) The method according to claim 1, wherein the conditions 
comprise at least one of port numbers and port number ranges. 

8. (Previously Amended) The method according to claim 1, wherein the conditions 
comprise at least one job name. 

9. (Previously Amended) The method according to claim 1 , wherein the conditions 
comprise at least one client identifier. 

10. (Currently Amended) The method according to claim 1, further comprising 
checking the security policy information when the executing first application program 
establishes a connection, and wherein the communications on that connection are encrypted. 

1 1 . (Currently Amended) The method according to claim 1 , wherein communications 
from the executing first application program are encrypted even though the provided first 
application program has no code for security processing. 

12. (Currently Amended) The method according to claim 1 , wherein the provid e d 
first application program invokes at least one security directive, and further comprising 
executing, during execution of the provided first application program, at least one of the invoked 
security directives. 
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13. (Previously Amended) The method according to claim 1, wherein, when a result of 
evaluating the security policy information so indicates, communications on only some sockets of 
a port are encrypted. 

14. (Original) The method according to claim 1, wherein the provided security 
processing operates in a Transmission Control Protocol layer of the operating system kernel 

15. (Original) The method according to claim 1, wherein the provided security 
processing implements Secure Sockets Layer. 

16. (Previously Amended) The method according to claim 1, wherein the provided 
security processing implements Transport Layer Security. 

17. (Currently Amended) A system for improving security processing in a computing 
network, comprising: 

means for performing security processing in an operating system kernel; 

security policy information that is usable for more than one executing application 
program specifying at least one condition under which the means for performing security 
processing is to be activated; 

means for executing an- first and second application program programs which m akes 
make use of the operating system kernel during execution; and 

means for selectably encrypting, according to the conditions specified by the security 
policy information, at least one remote communication of the executing first application 
program and at least one remote communication of the executing second application program 
using the means for performing security processing. 

1 8. (Currently Amended) A computer program product for improving security 
processing in a computing network, the computer program product comprising: 
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a computer usable medium having computer readable program code embodied therein, 
the computer usable medium comprising: 

computer-readable program code configured to perform security processing in an 
operating system kernel; 

computer-readable program code configured to access security policy information that is 
usable for more than one executing application program, the security policy information 
specifying at least one condition under which the computer-readable program code configured to 
perform security processing is to be activated; 

computer-readable program code configured to execute an- first and second application 
program programs which makes make use of the operating system kernel during execution; and 

computer-readable program code configured to selectably encrypt, according to the 
conditions specified by the security policy information, at least one remote communication of the 
executing first a pplication program and at least one remote communication of the executing 
second application program using the computer-readable program code configured to perform 
security processing. 



